Authbwc

=========================

* **BC BREAK**: change test_create() methods to testing_create()

=========================

* fix user message css styling issue on password reset page

=========================

* fix manage pages when used with MSSQL

=========================

* use Form from CommonBWC since it handles SAValidation errors now
* fix bug in UserFormBase.add_field_errors()
* Add UserMixin permission related methods

=========================

* (SECURITY FIX) fixed an issue with the way the HTTP session user permissions
were loaded. This vulnerability made it possible for a user to gain the
permissions of the user logged in previously. The user would have had
to be sharing the same http session for this access to have been
gained.

=========================

* modifying after_login_url() to take script_name into account (requires BlazeWeb
upgrade to 0.3.1)